<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
  <meta http-equiv="Content-Type" content="text/html; charset=utf-8"/>
  <link type="text/css" rel="stylesheet" href="office11.css"/>
<link type="text/css" rel="stylesheet" href="style.css"/>
</head>
<body>
<h1>Security Certificates</h1>
<dl style="margin-left: 40px;">
  <dt>Private key file</dt>
  <dd cshelp="IDH_SETTINGS_CERTIFICATES_PRIVATE_KEY_FILE">This file is your personal and private certificate file. <b>Do not share this with other users or hubs.</b> If you do, you risk allowing others to use your certificate and in essence pose as you.</dd>
  <dt>Own certificate file</dt>
  <dd cshelp="IDH_SETTINGS_CERTIFICATES_CERTIFICATE_FILE">This file is the certificate file you should give to other users and hubs that you want to consider "trusted". </dd>
  <dt>Trusted certificates path</dt>
  <dd cshelp="IDH_SETTINGS_CERTIFICATES_TRUSTED_CERTIFICATES_PATH">Where trusted certificates from users or hubs will be stored. (default: the "Certificates\" subdirectory of where you've installed the application.) </dd>
</dl>
<h2>Options</h2>
<dl style="margin-left: 40px;">
  <dt>Use TLS when remote client supports it</dt>
  <dd cshelp="IDH_SETTINGS_CERTIFICATES_USE_TLS">When this option is enabled, DC++ will connect to remote
clients on an ADC hub that support SSL using SSL. This option is
an experimental one, and shouldn't imply that DC++ is secure in any way.</dd>
  <dt>Allow TLS connections to hubs without trusted certificate</dt>
  <dd cshelp="IDH_SETTINGS_CERTIFICATES_ALLOW_UNTRUSTED_HUBS">With this option disabled, all hubs you connect to must have a certificate in your Trusted certificate folder.</dd>
  <dt>Allow TLS connections to clients without trusted certificate</dt>
  <dd cshelp="IDH_SETTINGS_CERTIFICATES_ALLOW_UNTRUSTED_CLIENTS">With this option disabled, all client you connect to must have a certificate in your Trusted certificate folder.</dd>
</dl>
<p>
To see effects, please restart DC++.
</p>
<p>
SSL support is an experimental feature and doesn't imply that DC++ is secure in any way.
</p>
</body>
</html>
